codersanjay


Rank #139 Level 3



52
unique bugs discovered
69 hours, 44 minutes and 27 seconds active hacking time

60
reports accepted
95 Accuracy

Vulnerability Types Found

Bug Submissions & total bug count


Hackevent (FirstBlood) Activity

Report Title Event ID Severity Vulnerability Type
PII leak via /drpanel/drapi/qp.php?name=sanjay FirstBlood v1 CRITICAL Auth issues
Invitation code leaked on reddit FirstBlood v1 High Auth issues
IDOR on newly registered doctor FirstBlood v1 CRITICAL Application/Business Logic
IDOR on /drpanel/drapi/qp.php endpoint FirstBlood v1 CRITICAL Application/Business Logic
Can know who are attending an HackerBack event FirstBlood v1 CRITICAL Information leak/disclosure
Open Redirect via logout ref parameter FirstBlood v1 Low Open Redirect
Stored XSS on cancelled.php endpoint FirstBlood v1 High Stored XSS
Reflected XSS on login Page via ref paramater FirstBlood v1 Medium Reflective XSS